Information Technology Reference
In-Depth Information
good perception of the IT governance in SMOs
in Spain. The absence of an IT strategy other than
supporting the operation, and the problems with
outsourcing makes indispensable to establish
some type of committee to manage IT from an
organization-wide perspective (somehow strate-
gically) and to handle the different problems the
companies are facing. This will allow separating,
in the organizations, decision from accountability.
There is also a need to define a risk management
schema that will ensure business continuity and,
also, legal and compliance aspects. This is very
important taking into account that, for example,
while outsourcing is one of the main issues on
the companies, there are few companies that are
managing risk in this area.
The implementation of these practices needs
to bring a win-win scenario to the companies,
in which the benefits of better controlling and
managing IT (and thus the business) should
compensate the effort and cost to implement the
structures mentioned.
Duffy, J. (2002).
IT/Business alignment: Is it an
option or is it mandatory? Elieson, B. D. (2006).
Construction of an IT Risk Framework
. Rolling
Meadows, IL: IT Governance Institute.
Henderson, J. C., & Venkatraman, N. (1999).
Strategic alignment: leveraging information
technology for transforming organizations.
IBM
Systems Journal
,
38
(2-3).
Institute de la Gouvernance des Système
d'Information. (2005).
The place of IT Gover-
nance in the Enterpise Governance. Balancing
Performance and Conformance
. Paris: Institute
de la Gouvernance des Systèmes d'Information.
Institute of Directors of Southern Africa. (2009).
King Code Of Governance for South Africa
.
ISO
.
(2008).
ISO / IEC 38500:2008 Corporate
Governance for Information Technology.
IT Governance Institute. (2003).
Board Briefing
on IT Governance
(2nd ed.). Rolling Meadows,
IL: IT Governance Institute.
IT Governance Institute. (2004).
IT Governance
Global Status Report
. Rolling Meadows, IL: IT
Governance Institute.
references
AECA. (2007).
Gobierno y responsabilidad social
de la empresa
. Madrid: AECA.
IT Governance Institute. (2006).
Enterprise
Value: Governance of IT Investments. The Val IT
Framework
. Rolling Meadows, IL: IT Governance
Institute.
Cadbury, A. (1992).
Report of the Committee on
the Financial Aspects of Corporate Governance
.
G. P. Publishing.
IT Governance Institute. (2006).
IT Governance
Global Status Report - 2006
. Rolling Meadows,
IL: IT Governance Institute.
Calder, A. (2007).
IT Governance Pocket Guide
.
Rolling Meadows, IL: IT Governance Publishing.
CIMA. (2003).
Enterprise Governance. Getting
the balance right. CIMA
. IFAC.
IT Governance Institute. (2007).
Control Objec-
tives for Information and Related Technology,
versión 4.1
. Rolling Meadows, IL: IT Governance
Institute.
COSO. (1992).
Internal Control - Integrated
Framework
. Washington, DC: COSO.
IT Governance Institute. (2008a).
Enterprise
Value: Governance of IT Investments. The Val IT
Framework 20
. Rolling Meadows, IL: IT Gov-
ernance Institute.
COSO. (2004).
Enterprise Risk Management -
Integrated Framework (Executive Summary)
.
Washington, DC: COSO.
Search WWH ::
Custom Search